Top Ten Tomcat Configuration Tips
Date:   2003-07-15 15:13:30
If only the author understood that one is supposed to think about the defaults, then he could tip us.

This line:
<Server port="8005" shutdown="SHUTDOWN" debug="0">

means a DOS attack by a local user is possible

telnet localhost 8005

and you're down again, please tell your reader to pick a shutdown password that's not default